Starting background file system checks in 60 seconds. Thu Mar 3 07:20:30 UTC 2022 FreeBSD/amd64 (ci-freebsd-main-5.c.syzkaller.internal) (ttyu0) Warning: Permanently added '10.128.1.77' (ECDSA) to the list of known hosts. 2022/03/03 07:21:22 parsed 1 programs 2022/03/03 07:21:22 executed programs: 0 login: [fib_algo] inet.0 (bsearch4#24) rebuild_fd_flm: switching algo to radix4_lockless witness_lock_list_get: witness exhausted maxproc limit exceeded by uid 0 (pid 7000); see tuning(7) and login.conf(5) maxproc limit exceeded by uid 0 (pid 7354); see tuning(7) and login.conf(5) maxproc limit exceeded by uid 0 (pid 6914); see tuning(7) and login.conf(5) panic: pmap_san_enter_alloc_4k: no memory to grow shadow map cpuid = 1 time = 1646292092 KDB: stack backtrace: db_trace_self_wrapper() at db_trace_self_wrapper+0xc7/frame 0xfffffe0094aad970 kdb_backtrace() at kdb_backtrace+0xd3/frame 0xfffffe0094aadad0 vpanic() at vpanic+0x2b8/frame 0xfffffe0094aadbb0 panic() at panic+0xb5/frame 0xfffffe0094aadc70 pmap_san_enter() at pmap_san_enter+0x56c/frame 0xfffffe0094aadcb0 kasan_shadow_map() at kasan_shadow_map+0x98/frame 0xfffffe0094aadcd0 pmap_growkernel() at pmap_growkernel+0xdf/frame 0xfffffe0094aadd10 vm_map_insert() at vm_map_insert+0x6bc/frame 0xfffffe0094aade50 vm_map_find() at vm_map_find+0x92f/frame 0xfffffe0094aadf30 kva_import() at kva_import+0xd4/frame 0xfffffe0094aae010 vmem_try_fetch() at vmem_try_fetch+0x21f/frame 0xfffffe0094aae100 vmem_xalloc() at vmem_xalloc+0x528/frame 0xfffffe0094aae1c0 kva_import_domain() at kva_import_domain+0x5f/frame 0xfffffe0094aae210 vmem_try_fetch() at vmem_try_fetch+0x21f/frame 0xfffffe0094aae2f0 vmem_xalloc() at vmem_xalloc+0x528/frame 0xfffffe0094aae3b0 vmem_alloc() at vmem_alloc+0x106/frame 0xfffffe0094aae410 kmem_malloc_domainset() at kmem_malloc_domainset+0x175/frame 0xfffffe0094aae530 keg_alloc_slab() at keg_alloc_slab+0x1d3/frame 0xfffffe0094aae650 zone_import() at zone_import+0x2de/frame 0xfffffe0094aae820 cache_alloc() at cache_alloc+0x879/frame 0xfffffe0094aae8e0 cache_alloc_retry() at cache_alloc_retry+0x37/frame 0xfffffe0094aae950 fdcopy() at fdcopy+0x8c/frame 0xfffffe0094aaea50 do_fork() at do_fork+0x95d/frame 0xfffffe0094aaeb30 fork1() at fork1+0xb3a/frame 0xfffffe0094aaec30 sys_fork() at sys_fork+0xe3/frame 0xfffffe0094aaed30 amd64_syscall() at amd64_syscall+0x40c/frame 0xfffffe0094aaef30 fast_syscall_common() at fast_syscall_common+0xf8/frame 0xfffffe0094aaef30 --- syscall (198, FreeBSD ELF64, nosys), rip = 0x28a42a, rsp = 0x82a5f1f08, rbp = 0x82a5f1f70 --- KDB: enter: panic [ thread pid 1368 tid 100678 ] Stopped at kdb_enter+0x6b: movq $0,0x2705dda(%rip) db> db> set $lines = 0 db> set $maxwidth = 0 db> show registers cs 0x20 ds 0x3b es 0x3b fs 0x13 gs 0x1b ss 0x28 rax 0x12 rcx 0x1f0b9df0968b5a9a rdx 0xdffff7c000000000 rbx 0 rsp 0xfffffe0094aadab0 rbp 0xfffffe0094aadad0 rsi 0x1 rdi 0 r8 0x3 r9 0xffffffff r10 0 r11 0xfffffe009d3b5e10 r12 0xfffffe0094d50560 r13 0xfffffe0094aadb01 r14 0xffffffff82ba9ce0 .str.26 r15 0xffffffff82ba9ce0 .str.26 rip 0xffffffff8176b73b kdb_enter+0x6b rflags 0x46 kdb_enter+0x6b: movq $0,0x2705dda(%rip) db> show proc Process 1368 (syz-executor.3) at 0xfffffe0094d13a90: state: NORMAL uid: 0 gids: 0, 0, 5 parent: pid 867 at 0xfffffe0092f94548 ABI: FreeBSD ELF64 flag: 0x10000000 flag2: 0 arguments: /root/syz-executor.3 exec reaper: 0xfffffe0053dda000 reapsubtree: 1 sigparent: 20 vmspace: 0xfffffe0094da9000 (map 0xfffffe0094da9000) (map.pmap 0xfffffe0094da90c0) (pmap 0xfffffe0094da9128) threads: 1 100678 Run CPU 1 syz-executor.3 db>